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(54) A method of mapping destination addresses for use in calculating digital tokens 

(57) A method of creating an open system digital 
token includes sending predetermined information to a 
digital token generation process. A set of characters are 
randomly selected from the predetermined information. 
A mapping algorithm is applied to the selected charac- 
ters to facilitate a character recognition process and a 
random number algorithm is applied to the mapped 
selected characters to obtain a random number. A dig- 
ital token is calculated using the random number. The 
predetermined information may be delivery address 
information in the form of an ASCII string which is 
reduced by eliminating certain non-alphanumeric char- 
acters from the ASCII string. Certain characters can be 
modified to facilitate OCR processing. A plurality of 
characters are randomly selected from the reduced 
ASCII string to determine random positions in the 
reduced ASCII string. The ASCII code of the selected 
characters are mapped to the code of a reduced space 
using a mapping table. The mapped delivery address 
information is included in a digital token calculation of 
the digital token generation process. 
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Description 

The present invention relates to advanced postage 
payment systems and, more particularly, to advanced 
postage payment systems having pre-computed post- 
age payment information. 

The present application is related to the following 
U.S. Patent Applications Serial Nos. [Attorney Dockets 
E-415, E-416, E-418, E-419, E-420, E-421, E-444, E- 
452, E-463 and E-466], each filed concurrently here- 
with, and assigned to the assignee of the present inven- 
tion. 

Postage metering systems are being developed 
which employ digital printers to print encrypted informa- 
tion on a mailpiece. Such metering systems are pres- 
ently categorized by the United States Postal Service as 
either closed systems or open systems. In a closed sys- 
tem, the system functionality is solely dedicated to 
metering activity. A closed system metering device 
includes a dedicated printer securely coupled to a 
metering or accounting function. In a closed system, 
since the printer is securely coupled and dedicated to 
the meter, printing cannot take place without account- 
ing. In an open metering system the system functional- 
ity is not dedicated solely to metering activity. An open 
system metering device includes a printer that is not 
dedicated to the metering activity, thus freeing system 
functionality for multiple and diverse uses in addition to 
the metering activity. An open system metering device is 
a postage evidencing device (PED) with a non-dedi- 
cated printer that is not securely coupled to a secure 
accounting module. 

Typically, the postage value for a mailpiece is 
encrypted together with other data to generate a digital 
token which is then used to generate a postage indicia 
that is printed on the mailpiece. A digital token is 
encrypted information that authenticates the informa- 
tion imprinted on a mailpiece including postal value. 
Examples of systems for generating and using digital 
tokens are described in U.S. Patent No. 4,757,537, 
4,831,555, 4,775,246, 4,873,645 and 4,725,718, the 
entire disclosures of which are hereby incorporated by 
reference. These systems employ an encryption algo- 
rithm to encrypt selected information to generate at 
least one digital token for each mailpiece. The encryp- 
tion of the information provides security to prevent alter- 
ing of the printed information in a manner such that any 
misuse of the tokens is detectable by appropriate verifi- 
cation procedures. 

Typical information which may be encrypted as part 
of a digital token includes origination postal code, ven- 
dor identification, data identifying the PED, piece count, 
postage amount, date, and, for an open system, desti- 
nation postal code. These items of information, collec- 
tively referred to as Postal Data, when encrypted with a 
secret key and printed on a mail piece provide a very 
high level of security which enables the detection of any 
attempted modification of a postal revenue block or a 
destination postal code. A postal revenue block is an 



image printed on a mail piece that includes the digital 
token used to provide evidence of postage payment. 
The Postal Data may be printed both in encrypted and 
unencrypted form in the postal revenue block. Postal 

5 Data serves as an input to a Digital Token Transforma- 
tion which is a cryptographic transformation computa- 
tion that utilizes a secret key to produce digital tokens. 
Results of the Digital Token Transformation, i.e., digital 
tokens, are available only after completion of the 

10 Accounting Process. 

Digital tokens are utilized in both open and closed 
metering systems. However, for open metering sys- 
tems, the non-dedicated printer may be used to print 
other information in addition to the postal revenue block 

is and may be used in activity other than postage evidenc- 
ing. In an open system PED, addressee information is 
included in the Postal Data which is used in the genera- 
tion of the digital tokens. Such use of the addressee 
information creates a secure link between the mailpiece 

20 and the postal revenue block and allows unambiguous 
authentication of the mail piece. 

Prior open metering system designs use the desti- 
nation postal code (in U.S.A. this is the 11 digit Zip 
code) to identify the address. This approach has several 

25 problems. For international mail, a destination postal 
code may not exist. If one does exist, a mailer may not 
have access to it. If the mailer guesses an incorrect 
postal code, the cost of returning and correcting the 
mail is very high for the postal service. The destination 

30 postal code does not identify the recipient of the mail, so 
mail can be sent fraudulently to several people in the 
same building. 

The present invention provides a method of map- 
ping destination addresses for use in a token generation 

35 process for an open metering system, such as a PC- 
based metering system that comprises a PC, a plug -in 
peripheral as a vault to store postage funds and a non- 
secure and non-dedicated printer to generate digital 
tokens and later print evidence of postage on envelopes 

40 and labels at the same time it prints a recipient address. 
An open metering system must include delivery 
address information, such as the 1 1 -digit ZIP, in the cal- 
culation of digital tokens to protect the system from a 
fraudulent copying of the tokens. In accordance with the 

45 present invention, a PC-based metering system sup- 
plies the entire delivery address to the vault. The vault 
selects a set of characters randomly from the delivery 
address characters such that it would be difficult to 
guess outside the vault which characters have been 

so selected. The vault then applies mapping to the 
selected characters to reduce the amount of data fur- 
ther. The mapping is specially designed to help the 
character recognition process for the verification system 
but maintains the integrity of the open metering system. 

55 In accordance with the present invention a method 
of creating an open system digital token includes send- 
ing predetermined information to a digital token genera- 
tion process. A set of characters are randomly selected 
from the predetermined information. A mapping algo- 
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rithm is applied to the selected characters to facilitate a 
character recognition process and a random number 
algorithm is applied to the mapped selected characters 
to obtain a random number. A digital token is calculated 
using the random number. The predetermined informa- 5 
tion may be delivery address information in the form of 
an ASCII string which is reduced by eliminating certain 
non-alphanumeric characters from the ASCII string. 
Certain characters can be modified to facilitate OCR 
processing. A plurality of characters are randomly w 
selected from the reduced ASCII string to determine 
random positions in the reduced ASCII string. The 
ASCII code of the selected characters are mapped to 
the code of a reduced space using a mapping table. The 
mapped delivery address information is included in a 15 
digital token calculation of the digital token generation 
process. 

The method of the present invention provides secu- 
rity that prevents tampering and false evidence of post- 
age payment and provides the ability to do batch 20 
processing of digital tokens. 

The above and other objects and advantages of the 
present invention will be apparent upon consideration of 
the following detailed description, taken in conjunction 
with accompanying drawings, in which like reference 25 
characters refer to like parts throughout, and in which: 

Fig. 1 is a block diagram of a PC-based metering 
system in which the present invention operates; 
Fig. 2 is a schematic block diagram of the PC- 30 
based metering system of Fig. 1 including a remov- 
able vault card and a DLL in the PC; 
Fig. 3 is a schematic block diagram of the DLL in 
the PC-based metering system of Fig. 1 including 
interaction with the vault to issue and store digital 35 
tokens; 

Fig. 4 (4A-4B) is a flow chart of the address map- 
ping for a digital token generation process in 
accordance with the present invention; 
Fig. 5 is a representation the assignment of bits of 40 
a random number to select a random number of 
characters from an address string used in the 
address mapping of Fig. 4; and 
Fig. 6 is an representation of indicia generated and 
printed by the PC-based metering system of Fig. 1 . 45 

In describing the present invention, reference is 
made to the drawings, wherein there is seen in Figs. 1- 
3 an open system PC-based postage meter, also 
referred to herein as a PC meter system, generally so 
referred to as 10, in which the present invention per- 
forms the digital token process. PC meter system 10 
includes a conventional personal computer configured 
to operate as a host to a removable metering device or 
electronic vault, generally referred to as 20, in which ss 
postage funds are stored. PC meter system 10 uses the 
personal computer and its printer to print postage on 
envelopes at the same time it prints a recipient's 
address or to print labels for pre-addressed return enve- 



lopes. It will be understood that although the preferred 
embodiment of the present invention is described with 
regard to a postage metering system, the present inven- 
tion is applicable to any value metering system that 
includes a transaction evidencing. 

As used herein, the term personal computer is used 
generically and refers to present and future micro- 
processing systems with at least one processor opera- 
tively coupled to user interface means, such as a 
display and keyboard, and storage media. The personal 
computer may be a workstation that is accessible by 
more than one user. 

The PC-based postage meter 10 includes a per- 
sonal computer (PC) 12, a display 14, a keyboard 16, 
and an non-secured digital printer 18, preferably a laser 
or ink-jet printer. PC 12 includes a conventional proces- 
sor 22, such as the 80486 and Pentium processors 
manufactured by Intel, and conventional hard drive 24, 
floppy drive(s) 26, and memory 28. Electronic vault 20, 
which is housed in a removable card, such as PCMCIA 
card 30, is a secure encryption device for postage funds 
management, digital token generation and traditional 
accounting functions. PC meter system 10 may also 
include an optional modem 29 which is located prefera- 
bly in PC 12. Modem 29 may be used for communicat- 
ing with a Postal Service or a postal authenticating 
vendor for recharging funds (debit or credit). In an alter- 
nate embodiment the modem may be located in PCM- 
CIA card 30. 

PC meter system 10 further includes a Windows- 
based PC software module 34 (Figs. 3 and 4) that is 
accessible from conventional Windows-based word 
processing, database and spreadsheet application pro- 
grams 36. PC software module 34 includes a vault 
dynamic link library (DLL) 40, a user interface module 
42, and a plurality of sub-modules that control the 
metering functions. DLL module 40 securely communi- 
cates with vault 20 and provides an open interface to 
Microsoft Windows-based application programs 36 
through user interface module 42. DLL module 40 also 
securely stores an indicia image and a copy of the 
usage of postal funds of the vault. User interface mod- 
ule 42 provides application programs 36 access to an 
electronic indicia image from DLL module 40 for printing 
the postal revenue block on a document, such as an 
envelope or label. User interface module 42 also pro- 
vides application programs the capability to initiate 
remote refills and to perform administrative functions. 

PC-based meter system 10 operates as a conven- 
tional personal computer with attached printer that 
becomes a postage meter upon user request. Printer 18 
prints all documents normally printed by a personal 
computer, including printing letters and addressing 
envelopes, and in accordance with the present inven- 
tion, prints postage indicia. 

The vault is housed in a PCMCIA I/O device, or 
card, 30 which is accessed through a PCMCIA control- 
ler 32 in PC 12. A PCMCIA card is a credit card size 
peripheral or adapter that conforms to the standard 
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specification of the personal Computer Memory Card 
International Association. Referring now to Figs. 2 and 
3, the PCMCIA card 30 includes a microprocessor 44, 
redundant non-volatile memory (NVM) 46, clock 48, an 
encryption module 50 and an accounting module 52. 
The vault includes an interface 56 that communicates 
with the host processor 22 through PCMCIA controller 
32. The encryption module 50 may implement the NBS 
Data Encryption Standard (DES) or another suitable 
encryption scheme. In the preferred embodiment, 
encryption module 50 is a software module. It will be 
understood that encryption module 50 could also be a 
separator device, such as a separate chip connected to 
microprocessor 44. Accounting module 52 may be 
EEPROM that incorporates ascending and descending 
registers as well as postal data, such as origination ZIP 
Code, vendor identification, data identifying the PC- 
based postage meter 10, sequential piece count of the 
postal revenue block generated by the PC-based post- 
age meter 10, postage amount and the date of submis- 
sion to the Postal Service. As is known, an ascending 
register in a metering unit records the amount of post- 
age that has been dispensed, i.e., issued by the vault, in 
all transactions and the descending register records the 
value, i.e., amount of postage, remaining in the meter- 
ing unit, which value decreases as postage is issued. 

The functionality of DLL 40 is a key component of 
PC-base meter 10. DLL 40 includes both executable 
code and data storage area 41 that is resident in hard 
drive 24 of PC 12. In a Windows environment, a vast 
majority of applications programs 36, such as word 
processing and spreadsheet programs, communicate 
with one another using one or more dynamic link librar- 
ies. PC-base meter 10 encapsulates all the processes 
involved in metering, and provides an open interface to 
vault 20 from all Windows-based applications capable 
of using a dynamic link library. Any application program 
36 can communicate with vault microprocessor 44 in 
PCMCIA card 30 through DLL 40. 

DLL 40 includes the following software sub-mod- 
ules. Secure communications sub-module 80 controls 
communications between PC 12 and vault 20. Transac- 
tion captures sub-module 82 stores transaction records 
in PC 12. Secure indicia image creation and storage 
sub-module 84 generates an indicia bitmap image and 
stores the image for subsequent printing. Application 
interface sub-module 86 interfaces with non-metering 
application programs and issues requests for digital 
tokens in response to requests for indicia by the non- 
metering application programs. Detailed descriptions of 
PC meter system 10 and the digital token generation 
process are provided in related U.S. Patent Applications 
Serial Nos. [Attorney Docket E-421] and [Attorney 
Docket E-416] filed concurrently herewith, each of 
which is incorporated herein in its entirety by reference. 

Since printer 18 is not dedicated to the metering 
function, issued digital tokens may be requested, calcu- 
lated and stored in PC 12 for use at a later time when, 
at a user's discretion, corresponding indicia are gener- 



ated and printed. Such delayed printing and batch 
processing is described in more detail in co-pending 
U.S. Patent Application Serial No. [Attorney Docket E- 
452], which is incorporated herein in its entirety by refer- 
s ence. 

Digital Token Generation Process 

In accordance with the present invention, when a 

10 request for digital token is received from PC 1 2, vault 20 
calculates and issues at least one digital token to PC 12 
in response to the request. The issued digital token is 
stored as part of a transaction record in PC 12 for print- 
ing at a later time. In the preferred embodiment of the 

is present invention, the transaction record is stored in a 
hidden file in DLL storage area 41 on hard drive 24. 
Each transaction record is indexed in the hidden file 
according to addressee information. It has been discov- 
ered that this method of issuing and storing digital 

20 tokens provides an additional benefit that one or more 
digital tokens can be reissued whenever a token has not 
been printed or if a problem has occurred preventing a 
printing of an indicia with the token. 

By storing digital tokens as part of transaction 

25 records in PC 12 the digital tokens can be accessed at 
a later time for the generation and printing of indicia 
which is done in PC 12. Furthermore, if a digital token is 
lost, i.e., not properly printed on a mailpiece, the digital 
token can be reissued from DLL 40 rather than from 

30 vault 20. The storage of transaction records that include 
vault status at the end of each transaction provides a 
backup to the vault with regard to accounting informa- 
tion as well as a record of issued tokens. The number of 
transaction records stored on hard drive 24 may be lim- 

35 ited to a predetermined number, preferably including all 
transactions since the last refill of vault 20. 

Address Mapping 

40 In accordance with the present invention, delivery 
address information is included in an open metering 
system token calculation in the following manner. Refer- 
ring now to Fig. 4, at 300 the entire delivery address is 
provided to vault 20. The address is supplied in the form 

45 of a data string in ASCII code, which includes white 
spaces, such as the 'space 1 , 'carriage return', lap*, and 
'line feed'. At 302 and 304, the string of ASCII code is 
preprocessed respectively to remove unnecessary 
characters from the string and to assign an identical 

so code to certain characters to reduce the chance of mis- 
read in the OCR verification process. At 302, all white 
spaces are deleted from the string of ASCII code except 
for 'line feed'. At 304, the typical ASCII code space of 
128 characters may be further reduced by assigning an 

55 identical code to characters that are similar in appear- 
ance. For example, 'o\ 'O', '0' can be assigned to the 
code 'o'; T, T, T to the code T; '5\ '8\ 'S' to '5\ The pur- 
pose of this conversion is to improve the token verifica- 
tion process which involves OCR reading of the printed 
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delivery address. It will be understood that such pre- 
processing can be optimized to reduce the ASCII code 
space from 62 (a-z, A-Z, 0-9) to 32 codes or less. 

At 306, the resulting preprocessed string of ASCII 
code is represented in a table T with n rows of charac- 5 
ters with each row having a variable length correspond- 
ing to the preprocessed delivery address. T={Cjj}, where 
h0,1,...(n-1);j=1,2,...l (n . 1 ); and lj is the number of char- 
acters in the ith row. At 308, a random number algorithm 
is applied to postal data, such as piece count, to obtain 10 
a 64 bit random number R. The random number R is 
used to select a random number of characters randomly 
from the preprocessed ASCII string. To determine the 
random positions of the address string, one can encrypt 
the piece count using one of the stored encryption keys is 
in the vault. For example, a single DES encryption pro- 
duces a 64 bit 'random' number that is divided into 
groups of bits to select characters for token generation 
process. 

At 310, parameters are calculated from R that are 20 
used to select characters from table T. In accordance 
with the preferred embodiment of the present invention, 
a set of numbers of smaller precision are selected from 
R, for example based on the length of the rows. Refer- 
ring now to Fig. 5, R is divided into two groups. The first 25 
group consists of the first three bits that are use to 
determine the number of characters N to be selected. 
Since N has a range from 0-7, this means that no char- 
acter or up to 7 characters can be selected. The remain- 
ing bits of R are further divided into consecutive sub- 30 
groups of 8 bits. The first N sub-groups are used to 
identify the characters to be selected for use in the dig- 
ital token calculation. For each of the N sub-groups, the 
first three bits represent a row index for table T, and the 
last five bits represent the character's position in the 35 
row. When the number of rows or the number of charac- 
ters in a row is less than the respective index deter- 
mined in this manner, the rows or characters in the rows 
are repeated as necessary to obtain a character for 
selection. For example, if table T has only 4 rows and 40 
the first three digits of a sub-group total 6, then the first 
two rows are repeated so that a sixth row is available for 
character selection. Likewise, if only 3 characters exist 
in a row of table T, the characters are repeated six times 
when the last five digits of the sub-group total 21 . 45 

Referring again to Fig. 4, at 312 the delivery 
address characters that are picked according to step 
310 are provided for the calculation of the digital token. 

The present invention provides several benefits for 
the open system digital token generation process. The so 
amount of data for character recognition is minimized 
which significantly reduces any chance of for mis-recog- 
nitions during the verification process. The random 
selection of characters from the delivery address makes 
it virtually impossible for anyone to guess the number of ss 
characters used or which characters are used in the dig- 
ital token generation process. 

It will be understood that the present invention is 
not limited to the mapping of addressee information or 



to an open postage metering system. The present 
invention applies to any transaction evidencing system 
in which a block of information is used to authenticate a 
document and the information is later scanned from the 
document in the verification process. 

The present invention is suitable for generating a 
batch of tokens for addressees in a mailing list rather 
than entering such list of addressees one at a time. The 
batch of tokens are part of a batch of transaction 
records, that are indexed in the transaction file in the 
DLL storage area 41 , which are later used to generate 
indicia images when printing envelopes for the mailing 
list. Such batch processing would be useful, for exam- 
ple, to production mailers which often have databases 
of addresses from which to generate mail. These data- 
bases are usually pre-processed and sorted to take 
advantage of postal discounts and recipient profiles for 
direct marketing opportunities. The address mapping 
for each of the addressees would function as described 
above. 

In an alternate embodiment, a PC-based open 
metering system is part of a network with the vault con- 
nected to a server PC and the user requesting postage 
from a user PC. The token generation process would 
proceed as previously described except that the vault 
functions, including token generation, would occur in the 
server PC or the vault card connected thereto. The 
server PC also stores a record of all transactions for 
backup and disaster recovery purposes. The user PC 
would store the transaction records, including issued 
tokens, on its hard drive and would generate indicia cor- 
responding thereto. This configuration would allow mul- 
tiple users to send a letter to the same addressee 
without the token generation being inhibited. A more 
detailed description of a network based PC meter sys- 
tem is disclosed in co-pending U.S. Patent Application 
Serial No. [Attorney Docket E-444], which is incorpo- 
rated herein in its entirety by reference. 

While the present invention has been disclosed and 
described with reference to a single embodiment 
thereof, it will be apparent, as noted above that varia- 
tions and modifications may be made therein. It is, thus, 
intended in the following claims to cover each variation 
and modification that falls within the true spirit and 
scope of the present invention. 

In the foregoing, the following attorney docket refer- 
ences indicate the US-applications shown in the follow- 
ing table. All these applications have corresponding 
European Applications and are hereby incorporated 
herein by reference: 

E-415 Serial No. 08/575,106 

E-416 Serial No. 08/575,107 

E-417 Serial No. 08/574,746 

E-418 Serial No. 08/574,745 

E-419 Serial No. 08/575,110 

E-420 Serial No. 08/574,743 

E-421 Serial No. 08/575,112 

E-444 Serial No. 08/575,109 



9 



EP0 780 807 A2 



10 



E-452 Serial No. 08/575,104 
E-463 Serial No. 08/574,749 
E-466 Serial No. 08/575,111 
E-462 Serial No. 08/588,499 

5 

Claims 

1 . A method of generating a digital token from prede- 
termined information, comprising the steps of: 

10 

sending the predetermined information to a 
digital token generator; 

representing the predetermined information in 
a table format; 

applying a random number algorithm to the is 
predetermined information to obtain a random 
number; 

selecting parameters from the random number 
to select characters from the predetermined 
information in table format; 20 
selecting a set of characters of the predeter- 
mined information in accordance with the 
selected parameters; and 
calculating a digital token using the random 
number. 25 

2. The method of claim 1 wherein the step of selecting 
parameters from the random number comprises the 
steps of: 

30 

using the first three bits of the random number 
to determine the number of characters to be 
selected from the predetermined information; 
dividing the remaining bits of the random 
number into at least 8 groups of consecutive 35 
bits; and 

subdividing each of the groups of bits into two 
subgroups, the first subgroup indicating the row 
of a selected character and the second sub- 
group indicating the column of the selected 40 
character. 

3. The method of claim 2 wherein the step of selecting 
a set of characters comprises the step of: 

45 

repeating a row or column of characters of the 
predetermined information in table format as 
necessary whenever a value of one of the first 
or second subgroups is greater than the 
number of rows and columns of the predeter- so 
mined information in table format. 



reducing the ASCII string by eliminating certain 
non-alphanumeric characters; 
modifying certain characters in the reduced 
ASCII string to facilitate OCR processing; 
selecting a plurality of characters randomly 
from the reduced ASCII string to determine 
random positions in the reduced ASCII string; 
mapping the ASCII code of the selected char- 
acters to the code of a reduced space using a 
mapping table; and 

including the mapped destination address 
information in a digital token calculation of the 
digital token generation process. 

5. The method of claim 4 wherein the step of selecting 
a plurality of characters randomly comprises the 
steps of: 

applying a random number algorithm to the 
destination address information to obtain a ran- 
dom number; 

using the first three bits of the random number 
to determine the number of characters to be 
selected from the predetermined information; 
dividing the remaining bits of the random 
number into at least 8 groups of consecutive 
bits; and 

subdividing each of the groups of bits into two 
subgroups, the first subgroup indicating the row 
of a selected character and the second sub- 
group indicating the column of the selected 
character. 

6. The method of claim 5 wherein the step of selecting 
a plurality of characters randomly comprises the 
further step of: 

repeating a row or column of characters of the 
predetermined information in table format as 
necessary whenever a value of one of the first 
or second subgroups is greater than the 
number of rows and columns of the predeter- 
mined information in table format. 



4. A method of generating a digital token for an open 
metering system, comprising the steps of: 

supplying destination address information to a 
digital token generation process, the destina- 
tion address data being in the form of an ASCII 
string 
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SUCH AS "SPACE". 'TAB' EXCEPT THE CHARACTER 
CODE CHOSEN TO INDICATE A NEW LINE 
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REDUCE THE ASCII CODE SPACE FURTHER TO HELP 
THE OCR PROCESS IF DESIRED. EXAMPLES ARE: (ASSIGN 
AN IDENTICAL CODE FOR BOTH "0" AND "0". ANOTHER 
^ IDENTICAL CODE FOR BOTH "5" AND "S\ OR CAPITALIZE 
\l ALL THE SMALL CASE CHARACTERS TO LARGE CASE. IN 
THIS FASHION, THE ASCII CODE SPACE OF 128 CHARACTERS 
CAN BE REDUCED TO A SET CODE OF 32 CODES.) 
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REPRESENT THE PREPROCESSED STRING IN A TABLE 
FORM: n ROWS OF CHARACTES. AND EACH ROW OF A 
VARIABLE LENGTH. SAY HCjjl .WHERE i-0.1.... 

(n-l ! j=U....l (n _ 1) ;l i IS THE NUMBER 

OF CHARACTERS ON THE iTH ROW 
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APPLY THE CLOSED SYSTEM TOKEN GENERATION 
ALGORITHM TO THE POSTAL DATA TO GET A 
RANDOM NUMBER OF 64 BITS LONG. R. (A DES 
ENCRYPTION DATA IS CONSIDERED AS A RANDOM NUMBER) 



I 



EP 0 780 807 A2 



\ 
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CALCULATE PARAMETERS FROM R TO 
SELECT CHARACTERS FROM THE TABLE T 



SELECT A SET OF NUMBERS OF SMALLER PRECISIONS 
FROM THE RANDOM NUMBER. R: 

STEP 1: PICK THE FIRST THREE BITS FROM R. AND 
CALL IT N. THIS N RANGES FROM 0 TO 7. THIS 
MEANS THAT NO CHARACTER. OR UP TO 7 CHARACTERS 
CAN BE SELECTEO. 

STEP 2: PICK THE NEXT B BITS. AND REPEAT IT 
N TIMES. 

STEP 3: DIVIDE EACH OF THE B BIT QUANTITY INTO 
TWO NUMBERS: 3 BITS AND 5 BITS. USE THE FIRST 3 
BITS AS THE ROW INDEX FOR THE TABLE T. THE NEXT 
5 BITS TO SELECT THE POSITION IN A ROW. WRAP 
AROUNO THE INDEX IF NECESSARY. FOR EXAMPLE. IF 
ONLY 3 CHARACTERS EXISTS IN A ROW. REPEAT THEM 
TO MAKE IT THE ROW OF 32 CHARACTERS 



312 



\| PICK NUMBER OF CHARACTERS FROM THE TABLE 
T. AS SPECIFIED IN THE ABOVE BOX 
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